Questions tagged [azure-application-registration]

2 questions

vote

1 answer

Custom Azure AD Role or Azure Policy to allow only Microsoft Graph User.Read.All permission to Azure Service Prinicpal

Use Case - Automate assigning Microsoft Graphs's User.Read.All permission to App Registration/Service Principal using DevOps pipeline. So that applications can read user profiles. Challenge To grant Microsoft Graphs's User.Read.All permission,…

asked Aug 28 '23 at 17:09

BreakHead

10,480
36
112
165

votes

1 answer

Azure User Impersonation does not work when User/Assignment enable on the Backend App Registration

I have two application registrations: one for the backend and one for the frontend. On the backend App Reg, I have defined (exposed) a scope called User_impersonation like the following: On the frontend App Reg, I have added the permissions…

azure azure-active-directory impersonation azure-application-registration

asked Aug 31 '23 at 16:23

Aniss Chohra